Static task
static1
Behavioral task
behavioral1
Sample
2024-04-25_fb9b2d48eb33e203929861ebb66539f6_virlock.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-25_fb9b2d48eb33e203929861ebb66539f6_virlock.exe
Resource
win10v2004-20240412-en
General
-
Target
2024-04-25_fb9b2d48eb33e203929861ebb66539f6_virlock
-
Size
357KB
-
MD5
fb9b2d48eb33e203929861ebb66539f6
-
SHA1
bd30771d2f43bec4b97fe08a56762c0cef473e1f
-
SHA256
7018b953e1533f3e9984ad8e020deaece06e38c005a1b1fed6874605bf17a3c6
-
SHA512
5d30e3eee3da2f65e453a69115e39f02b6e8712a61d5f0b05bc700d1bc85093ca8c7a832c15328eccc8621eef23bd6dfe3e5973468ea4ebd82dea2808343a20a
-
SSDEEP
6144:VCkyilpelkO3S33XvNXJOMPrXbx+UbUpo:EGpel54FXEMP4po
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2024-04-25_fb9b2d48eb33e203929861ebb66539f6_virlock
Files
-
2024-04-25_fb9b2d48eb33e203929861ebb66539f6_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 352KB - Virtual size: 351KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE